60 matches found
CVE-2025-1903
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cartadd.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed t...
EUVD-2024-33383
Malicious code in bioql PyPI...
EUVD-2024-49683
Malicious code in bioql PyPI...
EUVD-2024-49953
Malicious code in bioql PyPI...
EUVD-2024-33293
Malicious code in bioql PyPI...
EUVD-2024-33160
Malicious code in bioql PyPI...
EUVD-2024-33292
Malicious code in bioql PyPI...
EUVD-2024-50120
Malicious code in bioql PyPI...
EUVD-2025-7429
Malicious code in bioql PyPI...
CVE-2024-10994
A vulnerability has been found in Codezips Online Institute Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edituser.php. The manipulation of the argument image leads to unrestricted upload. The attack can be launched...
CVE-2024-10764
A vulnerability classified as critical has been found in Codezips Online Institute Management System 1.0. This affects an unknown part of the file /pages/saveuser.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit...
CVE-2024-9794
A vulnerability, which was classified as critical, has been found in Codezips Online Shopping Portal 1.0. This issue affects some unknown processing of the file /update-image1.php. The manipulation of the argument productimage1 leads to unrestricted upload. The attack may be initiated remotely. T...
CVE-2024-9038
A vulnerability classified as problematic was found in Codezips Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file insert-product.php. The manipulation of the argument productimage1/productimage2/productimage3 leads to unrestricted upload. The attac...
CVE-2024-10993
A vulnerability, which was classified as critical, was found in Codezips Online Institute Management System 1.0. Affected is an unknown function of the file /managewebsite.php. The manipulation of the argument websiteimage leads to unrestricted upload. It is possible to launch the attack remotely...
CVE-2024-10765
A vulnerability classified as critical was found in Codezips Online Institute Management System up to 1.0. This vulnerability affects unknown code of the file /profile.php. The manipulation of the argument oldimage leads to unrestricted upload. The attack can be initiated remotely. The exploit ha...
CVE-2025-1903
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cartadd.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2025-1903
CVE-2025-1903 affects Codezips Online Shopping Website 1.0. The vulnerability allows SQL injection by manipulating the id argument in /cart_add.php and can be exploited remotely. Multiple sources (NVD, Red Hat, CVE registries) describe a critical impact with high confidentiality, integrity, and a...
CVE-2025-1903 Codezips Online Shopping Website cart_add.php sql injection
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cartadd.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2025-1903 Codezips Online Shopping Website cart_add.php sql injection
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cartadd.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2025-1858
A vulnerability classified as critical was found in Codezips Online Shopping Website 1.0. This vulnerability affects unknown code of the file /success.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the publi...